VDB

CVE-2025-52455

CVE-2025-52455 PUBLISHED CVSS 5.300000190734863 MEDIUM

Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.

EPSS 0.24% · 47.8th percentile

Risk Scores

CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.24%
47.8th percentile

Affected Products

VendorProductVersions
SalesforceTableau Server0, 0, 0
tableautableau_server0, 2024.2, 2025.1

Timeline

  • Jul 25, 2025 Coalition ESS Score
  • Jul 25, 2025 Coalition ESS Score
  • Jul 25, 2025 CVE Published
  • Jul 25, 2025 CVE Updated
  • Jul 26, 2025 EPSS Score
  • Jul 29, 2025 Coalition ESS Score
  • Aug 4, 2025 EPSS Score
  • Aug 13, 2025 EPSS Score
  • Aug 22, 2025 EPSS Score
  • Aug 22, 2025 Coalition ESS Score
  • Aug 26, 2025 Coalition ESS Score
  • Aug 31, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›